JD Supra

HHS Proposes Security Rule Update: What Group Health Plans Need to Know

The US Department of Health and Human Services (HHS) on January 6, 2025 issued a notice of proposed rulemaking (NPRM) seeking feedback on proposed updates to the Security Standards for the Protection ...
HHS

Lessons from Strengths, Weaknesses of HHS Security Controls

The Department of Health and Human Services offers a model for applying multifactor authentication for privileged users, a new report illustrates. On the other hand, a second report shows HHS, like ...
JD Supra

HHS’s Proposed Security Rule Updates Will Require Adjustments to Accommodate Modern Vulnerability and Incident Response Issues

In this week’s installment of our blog series on the U.S. Department of Health and Human Services’ (HHS) HIPAA Security Rule updates in its January 6 Notice of Proposed Rulemaking (NPRM), we discuss ...
Healthcare IT News

OIG again deems HHS' infosec program ineffective

In its annual audit required by the Federal Information Security Modernization Act of 2014, OIG said it reviewed HHS programs and practices against its core and supplemental metrics. Through the ...
Becker's Hospital Review

HHS falls behind on data security in FY 2015: 10 things to know

The HHS Office of the Inspector General conducted a review of HHS’ compliance with the Federal Information Security Modernization Act of 2014 for fiscal year 2015. Overall, the OIG found HHS made ...
The National Law Review

The Why Behind the HHS Proposed Security Rule Updates

We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up for any (or all) of our 25+ Newsletters. Some states have laws and ethical rules regarding solicitation and ...
Reuters

Top 10 takeaways from the new HIPAA security rule NPRM

March 14, 2025 - On Jan. 6, 2025, the U.S. Department of Health and Human Services (HHS) proposed new regulations to enhance cybersecurity protections for electronic protected health information (ePHI ...
Fierce Healthcare

HHS proposes new cybersecurity requirements as first major HIPAA update in 10 years

A new proposed rule would also specifically apply to new technologies in healthcare like artificial intelligence, quantum computing, virtual reality and applied reality. (anyaberkutiStock / Getty ...
Healthcare IT News

Could HHS information blocking rule have unintended consequences on data sharing and security?

The U.S. Department of Health and Human Services has proposed new rules that will have a profound effect on how healthcare providers share patient data. The Office for the National Coordinator of ...
HHS

OIG: HHS Making Info Security Progress, But Still Has Gaps

The Department of Health and Human Services is making progress in improving its information security practices, but it still has gaps that put sensitive data and systems at risk of compromise, ...
Becker's Hospital Review

HHS privacy, security guidelines need strengthening, GAO says

A report from the Government Accountability Office suggests HHS could offer better guidance for healthcare organizations regarding cybersecurity and safeguarding patient information. The GAO report ...